Lorenzo Franceschi-Bicchierai reports: The personal information of almost 5 million parents and more than 200,000 kids was exposed earlier this month after a hacker broke into the servers of a Chinese company that sells kids toys and gadgets, Motherboard has learned. The hacked data includes names, email addresses, passwords, and home addresses of 4,833,678 parents…
Category: Of Note
FTC files notice of appeal in FTC v. LabMD
The FTC has filed a notice of appeal in FTC v. LabMD, stating: Complaint Counsel intends to preserve and advance all arguments presented before the Administrative Law Judge at the evidentiary hearing and through Complaint Counsel’s post-trial briefs, including Complaint Counsel’s Proposed Findings of Fact and Conclusions of Law, Post-Trial Brief, Reply to Respondent’s Proposed Findings of Fact,…
Lahey Clinic Hospital settles OCR charges stemming from theft of laptop used with CT scanner
Hot off the presses: there’s been another settlement announced by OCR. This one involves Lahey Hospital and Medical Center (Lahey Clinic Hospital), who have agreed to pay $850,000 and to adopt a robust corrective action plan to correct deficiencies in its HIPAA compliance program. Lahey is a nonprofit teaching hospital affiliated with Tufts Medical School, providing primary…
Hilton Worldwide discloses malware-related payment card breach began in November, 2014 (Update2)
From a statement on their site today: Hilton Worldwide (NYSE: HLT) has identified and taken action to eradicate unauthorized malware that targeted payment card information in some point-of-sale systems. Hilton immediately launched an investigation and has further strengthened its systems. Hilton Worldwide worked closely with third-party forensics experts, law enforcement and payment card companies on…
FBI has lead in probe of 1.2 billion stolen Web credentials: documents
Nate Raymond reports: A hacker who once advertised having access to user account information for websites like Facebook and Twitter has been linked through a Russian email address to the theft of a record 1.2 billion Internet credentials, the FBI said in court documents. That hacker, known as “mr.grey,” was identified based on data from a…
OPM OIG Audit Finds Significant Problems Remain
From the Executive Summary of FY 2015 FISMA Results: The significant deficiency related to information security governance has been dropped due to the reorganization of the Office of the Chief Information Officer (OCIO). OPM’s system development life cycle policy is not enforced for all system development projects. OPM does not maintain a…